admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-05-05 10:16:59 +00:00
Code Issues Packages Projects Releases Wiki Activity

add CVE-2020-35729

Browse Source
This commit is contained in:
corp0ra1 2021-08-02 14:45:40 +08:00 committed by GitHub
parent e192bd146e
commit d20e71a9d6
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 11 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

BIN
KlogServer/CVE-2020-35729/CVE_2020_35729.gif Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 970 KiB

11
KlogServer/CVE-2020-35729/README.md Normal file
View File

@ -0,0 +1,11 @@
# Klog Server Unauth RCE(CVE-2020-35729)
The 'authenticate.php' file uses the 'user' HTTP POST parameter in a call to the 'shell_exec()' PHP function without appropriate input validation,allowing arbitrary command execution as the apache user.
**Affected Version**: ≤2.4.1
**FOFA query rule**: [title="KLog Server" && body="authenticate.php"](https://fofa.so/result?qbase64=dGl0bGU9IktMb2cgU2VydmVyIiYmYm9keT0iYXV0aGVudGljYXRlLnBocCI%3D)
# Demo
![](CVE_2020_35729.gif)